|
210291
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Uninitialized Use in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
|
CWE-908
Use of Uninitialized Resource
|
CVE-2020-16042
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210292
|
8.1 |
HIGH
Network
|
google
|
chrome
|
Out of bounds read in networking in Google Chrome prior to 87.0.4280.88 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process mem…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-16041
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210293
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Insufficient data validation in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-20
CWE-787
CWE-190
Improper Input Validation
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2020-16040
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210294
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in extensions in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2020-16039
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210295
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in media in Google Chrome on OS X prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2020-16038
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210296
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in clipboard in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2020-16037
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210297
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in cookies in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to bypass cookie restrictions via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2020-16036
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210298
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Insufficient data validation in cros-disks in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised the browser process to bypass noexec restrictions via a mal…
|
NVD-CWE-noinfo
|
CVE-2020-16035
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210299
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in WebRTC in Google Chrome prior to 87.0.4280.66 allowed a local attacker to bypass policy restrictions via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2020-16034
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210300
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in WebUSB in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof security UI via a crafted HTML page.
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2020-16033
|
2024-11-21 14:06 |
2021-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
